Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xDXB5VeSTdjS41ExHsbvWr-8RGg.roa
File: xDXB5VeSTdjS41ExHsbvWr-8RGg.roa (raw, json)
Hash identifier: Jm5j6o6RamMmrKw98dJWqqe7eoVlygpoYyUkGDk0o1k=
Subject key identifier: C4:35:C1:E5:57:92:4D:D8:D2:E3:51:31:1E:C6:EF:5A:BF:BC:44:68
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xDXB5VeSTdjS41ExHsbvWr-8RGg.roa
Signing time: Thu 15 Sep 2022 02:39:44 +0000
ROA not before: Thu 15 Sep 2022 02:39:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 203.79.208.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C435C1E557924DD8D2E351311EC6EF5ABFBC4468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:44:9f:f9:91:77:8c:23:d0:d6:8e:07:ce:d3:
49:53:19:6e:31:cb:35:a4:49:51:d5:80:14:c5:b7:
f9:d8:ee:04:df:0e:4c:c9:73:13:cc:31:79:f1:5b:
27:2f:f0:15:c4:97:67:03:57:d5:9a:ea:35:35:51:
d6:2b:ee:64:0d:9c:8e:31:67:06:5c:b5:fe:dd:c2:
7c:ab:2b:f7:c4:bc:42:af:be:4b:e1:4c:1a:9c:da:
9a:1e:ca:ff:88:24:3f:8d:da:4e:f9:07:70:ba:5a:
f8:16:2a:cd:16:0f:9d:25:67:b9:37:6f:db:65:e1:
a1:ff:c3:7e:d6:6a:c4:0a:6f:cb:34:26:24:5d:af:
22:3a:cc:8e:00:09:ad:71:96:60:d4:cf:ff:5d:2e:
82:f5:6e:ee:e1:bc:0a:51:0f:3b:43:43:31:7a:82:
53:45:72:04:e1:6a:71:df:c4:82:01:64:98:13:62:
dc:73:5d:3f:1f:5f:08:06:b4:57:a3:22:e3:26:96:
9c:f8:ae:0a:4b:be:90:b7:71:01:d0:f8:53:94:ce:
d9:98:7d:b4:30:d7:05:55:a1:98:90:7d:7e:5a:f5:
36:b2:46:65:55:48:1c:2d:4e:fc:a0:d4:24:b3:36:
66:7d:34:8b:e1:4d:9e:04:86:52:78:a7:5f:8e:13:
3f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:35:C1:E5:57:92:4D:D8:D2:E3:51:31:1E:C6:EF:5A:BF:BC:44:68
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xDXB5VeSTdjS41ExHsbvWr-8RGg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.208.0/21
Signature Algorithm: sha256WithRSAEncryption
b2:3f:68:7b:44:2b:12:64:e1:95:f7:be:92:d9:1f:40:96:3f:
dd:e3:13:d2:e6:26:3a:a1:9d:dc:0b:08:6b:fc:5f:87:e4:9b:
14:3b:ae:30:4c:45:a1:68:30:34:36:c3:10:37:1b:c4:77:10:
5f:42:74:83:99:d0:b4:0d:38:44:a4:1e:7b:25:e0:b9:ea:42:
40:99:d1:5d:61:de:32:8c:1b:29:17:5b:78:37:5f:20:07:db:
3f:20:6a:97:fe:c9:9b:48:e2:c3:39:be:41:f6:32:ec:1d:0c:
9b:dc:71:f2:e7:e4:62:dd:76:a0:79:d8:64:7b:9c:63:f0:a9:
8e:e9:ad:f5:e2:70:d6:52:c7:b4:bc:12:a5:54:b9:ef:1f:d4:
76:c0:29:74:0a:df:e0:fe:49:2d:9a:ce:24:27:fa:7e:50:6c:
dc:30:aa:29:5e:f4:f6:eb:d1:9d:7f:e3:0d:1f:ff:ea:30:24:
31:d1:04:56:8a:91:36:6e:2d:cb:3c:18:5d:fd:a3:ec:fc:8c:
8a:40:12:91:15:a6:c1:81:49:eb:b3:64:63:84:91:6c:d9:49:
00:dc:30:2d:40:96:29:25:cd:77:39:fb:0b:a9:6d:9b:81:fd:
5e:85:71:b7:00:fb:10:5c:5e:1d:4a:59:ec:4b:4c:87:c2:63:
b5:db:41:b4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjM5NDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEM0MzVDMUU1NTc5MjRE
RDhEMkUzNTEzMTFFQzZFRjVBQkZCQzQ0NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIRJ/5kXeMI9DWjgfO00lTGW4xyzWkSVHVgBTFt/nY7gTfDkzJ
cxPMMXnxWycv8BXEl2cDV9Wa6jU1UdYr7mQNnI4xZwZctf7dwnyrK/fEvEKvvkvh
TBqc2poeyv+IJD+N2k75B3C6WvgWKs0WD50lZ7k3b9tl4aH/w37WasQKb8s0JiRd
ryI6zI4ACa1xlmDUz/9dLoL1bu7hvApRDztDQzF6glNFcgThanHfxIIBZJgTYtxz
XT8fXwgGtFejIuMmlpz4rgpLvpC3cQHQ+FOUztmYfbQw1wVVoZiQfX5a9TayRmVV
SBwtTvyg1CSzNmZ9NIvhTZ4EhlJ4p1+OEz/lAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxDXB5VeSTdjS41ExHsbvWr+8RGgwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wveERYQjVWZVNUZGpTNDFFeEhzYnZX
ci04UkdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8tP0DAN
BgkqhkiG9w0BAQsFAAOCAQEAsj9oe0QrEmThlfe+ktkfQJY/3eMT0uYmOqGd3AsI
a/xfh+SbFDuuMExFoWgwNDbDEDcbxHcQX0J0g5nQtA04RKQeeyXguepCQJnRXWHe
MowbKRdbeDdfIAfbPyBql/7Jm0jiwzm+QfYy7B0Mm9xx8ufkYt12oHnYZHucY/Cp
jumt9eJw1lLHtLwSpVS57x/UdsApdArf4P5JLZrOJCf6flBs3DCqKV709uvRnX/j
DR//6jAkMdEEVoqRNm4tyzwYXf2j7PyMikASkRWmwYFJ67NkY4SRbNlJANwwLUCW
KSXNdzn7C6ltm4H9XoVxtwD7EFxeHUpZ7EtMh8JjtdtBtA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org